$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft File: 5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft (raw, json) Hash identifier: 8AFBelEkLDXMN5Evdl8sEtm72+lNxh0QL64WpC/0X/c= Subject key identifier: C1:CC:24:E9:1A:E3:69:0C:25:52:29:06:DE:F8:8A:16:93:C3:B3:0A Authority key identifier: E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 Certificate issuer: /CN=A91B6395/serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Certificate serial: 0771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft Manifest number: 0767 Signing time: Thu 24 Apr 2025 21:20:34 +0000 Manifest this update: Thu 24 Apr 2025 21:20:33 +0000 Manifest next update: Thu 01 May 2025 21:20:33 +0000 Files and hashes: 1: 5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl (hash: aqWG8DV3BgB1Tp0RIHEQasxTD01LDbdX2DNpt3RG2mE=) 2: 09664BCE144D11EBA0AF3555C4F9AE02.roa (hash: rdUSXytbXM84CWenGOGoRob5nCuOJZnNVIkvDgmUqS4=) 3: 08CE75A6144D11EBA0AF3555C4F9AE02.roa (hash: Ey+1oSHacaQI23omTKC4i8oGovoWsEThpx7tq0kzMuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6395, serialNumber=E6ACF4F594A4438F897AEDAAB4A3D38C865CCE22 Validity Not Before: Apr 24 21:20:33 2025 GMT Not After : May 1 21:20:33 2025 GMT Subject: CN=680aab22-9a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9e:aa:f2:20:42:1b:66:ea:87:78:f7:4b:af: 92:a4:a5:ee:26:e7:7a:71:4d:b9:f5:ea:54:00:e8: e0:24:4b:83:55:3c:b3:63:34:aa:cf:1b:0f:0e:bb: 65:6f:f4:7a:c6:8c:91:90:17:c3:47:b7:9b:9e:cd: 11:c0:47:ad:dd:55:1d:e3:95:88:59:3c:b6:34:e4: 11:d0:93:87:9b:ed:a6:68:14:2f:f1:6c:df:03:8f: 5f:87:ce:33:0f:73:d1:6b:f5:a2:9d:48:62:e9:60: 74:95:8b:97:73:d1:fe:c4:1a:ab:c5:23:6a:3f:49: 4e:19:81:19:e5:81:b3:10:39:1b:b8:38:ec:93:65: 8c:77:f9:91:e0:fc:f2:e5:f0:27:fd:ba:2f:d7:84: 65:81:de:e9:5b:44:48:40:1a:4a:40:47:c7:9f:35: 4c:c5:4b:74:6c:3c:66:62:7e:30:6d:99:c6:e5:9e: 5b:ca:3e:4c:5b:59:93:49:05:c0:4d:ea:58:81:23: 3c:bc:66:f6:39:ff:a6:6a:da:7b:b2:8a:f0:77:91: 65:29:85:20:30:73:d2:eb:8c:ab:2d:91:5d:f7:46: 9c:23:22:a2:de:94:cd:a3:6c:09:d1:bd:a3:a1:72: 0b:64:b2:ef:8c:ae:03:a0:3d:ae:47:b4:ec:fe:3c: 61:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CC:24:E9:1A:E3:69:0C:25:52:29:06:DE:F8:8A:16:93:C3:B3:0A X509v3 Authority Key Identifier: keyid:E6:AC:F4:F5:94:A4:43:8F:89:7A:ED:AA:B4:A3:D3:8C:86:5C:CE:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6395/DC456578144A11EB94076652C4F9AE02/5qz09ZSkQ4-Jeu2qtKPTjIZcziI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:18:59:91:cb:88:ec:a3:e2:b9:06:17:05:19:44:68:51:e0: 54:58:22:c6:96:07:f6:8c:eb:f2:3d:9f:18:09:3a:54:d6:88: a3:01:56:dc:02:7a:df:55:d4:fe:6a:1a:d6:50:d3:53:2d:de: 0d:a7:f6:8a:9e:34:b1:13:43:ec:b8:4f:8c:c3:e5:9c:f2:d1: 0b:47:0e:ed:7e:7c:7b:cb:89:c0:cc:4c:16:ea:66:db:25:f1: c2:7f:88:d9:26:dd:cb:da:35:c7:39:a1:ae:94:88:39:86:fb: b7:eb:f3:4e:66:ea:55:2a:d1:bc:b3:52:34:8a:5b:d6:d0:7a: 83:e1:fc:85:a2:8c:96:5e:d7:3d:62:5f:18:3d:55:ba:ec:48: 98:36:1b:05:dd:b4:8f:4d:04:f1:2d:c8:33:7a:ad:14:0c:29: eb:98:24:35:79:be:82:61:e4:20:a0:ae:88:78:81:55:ed:e8: 6d:6c:b6:c3:db:69:a1:49:2c:b9:0f:2b:f7:01:51:90:2f:06: 49:2e:0d:e5:36:20:e3:6b:49:da:61:64:b1:b1:b4:48:89:ad: 8e:b6:8b:52:a5:44:72:00:10:51:42:e1:3c:e5:1c:b4:94:10: 43:cc:f0:f8:42:e0:3c:82:f7:a3:24:76:21:43:3d:0b:f8:33: 13:fc:10:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYzOTUxMTAvBgNVBAUTKEU2QUNGNEY1OTRBNDQzOEY4OTdBRURBQUI0QTNEMzhD ODY1Q0NFMjIwHhcNMjUwNDI0MjEyMDMzWhcNMjUwNTAxMjEyMDMzWjAYMRYwFAYD VQQDEw02ODBhYWIyMi05YTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4J6q8iBCG2bqh3j3S6+SpKXuJud6cU259epUAOjgJEuDVTyzYzSqzxsPDrtl b/R6xoyRkBfDR7ebns0RwEet3VUd45WIWTy2NOQR0JOHm+2maBQv8WzfA49fh84z D3PRa/WinUhi6WB0lYuXc9H+xBqrxSNqP0lOGYEZ5YGzEDkbuDjsk2WMd/mR4Pzy 5fAn/bov14Rlgd7pW0RIQBpKQEfHnzVMxUt0bDxmYn4wbZnG5Z5byj5MW1mTSQXA TepYgSM8vGb2Of+matp7sorwd5FlKYUgMHPS64yrLZFd90acIyKi3pTNo2wJ0b2j oXILZLLvjK4DoD2uR7Ts/jxh/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHMJOka 42kMJVIpBt74ihaTw7MKMB8GA1UdIwQYMBaAFOas9PWUpEOPiXrtqrSj04yGXM4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjM5NS9EQzQ1NjU3ODE0 NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0LUpldTJxdEtQVGpJWmN6 aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxejA5WlNrUTQtSmV1MnF0S1BUaklaY3ppSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjM5NS9EQzQ1NjU3ODE0NEExMUVCOTQwNzY2NTJDNEY5QUUwMi81cXowOVpTa1E0 LUpldTJxdEtQVGpJWmN6aUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyGFmRy4jso+K5BhcFGURoUeBUWCLGlgf2jOvyPZ8YCTpU1oijAVbc AnrfVdT+ahrWUNNTLd4Np/aKnjSxE0PsuE+Mw+Wc8tELRw7tfnx7y4nAzEwW6mbb JfHCf4jZJt3L2jXHOaGulIg5hvu36/NOZupVKtG8s1I0ilvW0HqD4fyFooyWXtc9 Yl8YPVW67EiYNhsF3bSPTQTxLcgzeq0UDCnrmCQ1eb6CYeQgoK6IeIFV7ehtbLbD 22mhSSy5Dyv3AVGQLwZJLg3lNiDja0naYWSxsbRIia2OtotSpURyABBRQuE85Ry0 lBBDzPD4QuA8gvejJHYhQz0L+DMT/BAJ -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:58 2025 by rpki-client